e160a7de7bde40a5117c04df33533ccb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e160a7de7bde40a5117c04df33533ccb_JaffaCakes118
Size

1.0MB
MD5

e160a7de7bde40a5117c04df33533ccb
SHA1

042e11075015faf3ab004cb041498f78f139e94a
SHA256

d84e91fb5fe697c9869609a3b735c1ae0d6ad18be7739cf33a1df28f75e16639
SHA512

a043a66ea6cc76d0a233ea501344a0c12187f7a6a3827c3ae084d1355de2a6e25cf8159afb8a17a1de67ef1e02e7e0cfdb82e4e29850e176a171fd40616a8cd3
SSDEEP

24576:/bYHM9MnYA5okHCpNER1LsxiRNOtw5slJDT5Xbr4bGd:/bcWA5FCgH+4NOtwaDVXb0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e160a7de7bde40a5117c04df33533ccb_JaffaCakes118

Files

e160a7de7bde40a5117c04df33533ccb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f750794ae41a25e151ac8e4de8104dc2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalSize
GetCommandLineW
VirtualProtectEx
GlobalHandle
GlobalAlloc
GlobalFlags
GlobalFix

user32

DrawEdge
MenuItemFromPoint

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1012KB - Virtual size: 1016KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ